popup

Submissions

No Date Request Urls Hosts IDS Rule Score Zero VT Player Etc
1 2021-06-21 12:51 file20.exe  

350d120fa10b2400fd108dbb87577d3c


Themida Packer PE File .NET EXE PE32 Browser Info Stealer FTP Client Info Stealer VirusTotal Malware suspicious privilege Malicious Traffic Check memory Checks debugger buffers extracted unpack itself Checks Bios Collect installed applications Detects VMWare Check virtual network interfaces VMware anti-virtualization installed browsers check Tofsee Windows Browser ComputerName Firmware DNS Cryptographic key Software crashed 		2 3 3 10.4 M 26 ZeroCERT

2 2021-06-18 10:31 87435972.exe  

75cb80f790fc91926ba1d90a0bb6e09e


Generic Malware themida Admin Tool (Sysinternals etc ...) PE File PE32 VirusTotal Malware unpack itself Checks Bios Detects VirtualBox Detects VMWare VMware anti-virtualization Windows Firmware crashed 		5.4 M 45 r0d

3 2021-06-18 09:58 87435972.exe  

75cb80f790fc91926ba1d90a0bb6e09e


PE File PE32 VirusTotal Malware unpack itself Checks Bios Detects VirtualBox Detects VMWare VMware anti-virtualization Windows Firmware DNS crashed 		1 5 7.4 M 45 ZeroCERT

4 2021-06-18 09:56 asd.exe  

8b7f7f3857dd6194924c982d97fd13ce


PWS Loki[b] Loki[m] PE File PE32 DLL JPEG Format Malware download Amadey FTP Client Info Stealer VirusTotal Email Client Info Stealer Malware AutoRuns Malicious Traffic Check memory Checks debugger Creates executable files ICMP traffic unpack itself Windows utilities Checks Bios Detects VirtualBox Detects VMWare suspicious process AppData folder suspicious TLD WriteConsoleW VMware anti-virtualization Tofsee Windows Email ComputerName Firmware DNS Software crashed 		5 4 5 15.4 M 41 ZeroCERT

  • First
  • 1
  • Last
  • Total : 4cnts
keyword